Abstract | ||
---|---|---|
With the recent evolution in the VoIP market, where more and more devices and services are being pushed on a very promising market, assuring their security becomes crucial. Among the most dangerous threats to VoIP, failures and bugs in the software implementation will still rank high on the list of vulnerabilities. In this paper we address the issue of detecting such vulnerabilities using a stateful fuzzer. We describe an automated attack approach capable to self-improve and to track the state context of a target device. We implemented our approach and were able to discover vulnerabilities in market leading and well known equipments and software. |
Year | DOI | Venue |
---|---|---|
2007 | 10.1145/1326304.1326313 | IPTComm |
Keywords | Field | DocType |
state context,stateful fuzzer,recent evolution,software implementation,automated attack approach,voip market,stateful sip fuzzer,dangerous threat,promising market,target device,security protocol,software testing | Fuzz testing,Computer security,Computer science,Computer network,Software,Stateful firewall,Secure coding,Software implementation,Vulnerability,Voice over IP | Conference |
Citations | PageRank | References |
37 | 1.82 | 5 |
Authors | ||
3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Humberto J. Abdelnur | 1 | 60 | 4.27 |
Radu State | 2 | 623 | 86.87 |
Olivier Festor | 3 | 665 | 85.40 |